Legal 500: FinTech Laws & Regulations in Romania (2025)

Contributed by VD Law Group

Authors:

Sergiu Vasilescu
Luca Dejan
Bogdan Rotaru

This guide highlights Romania’s core fintech legal framework and regulatory distinctions as of 2025.

Regulatory Framework

National Bank of Romania (BNR) – Supervises banking, payment services and electronic money institutions.

Financial Supervisory Authority (ASF) – Regulates non-bank fintech activities, including investment and crowdfunding services.

Romanian Authority for Digitalization (RAD) – Influences digital identity, cybersecurity and digital infrastructure relevant to fintech.

Licensing & Compliance

Fintech providers offering regulated services must obtain specific authorisations. Regardless of licensing status, firms must comply with anti-money laundering (AML) and know-your-customer (KYC) rules.

Crypto-Assets & Blockchain

Romania’s regulation for crypto-assets continues to align with EU standards. Post-MiCA requirements apply, although no dedicated domestic crypto licence regime yet exists. Entities engaging in token services, exchange or trading must ensure compliance with AML and applicable EU frameworks.

Data Protection

Blockchain-related activities must respect GDPR requirements, especially when personal data is stored or processed on distributed ledgers.

Distinctive Features

Romania does not have a formal regulatory sandbox, but fintech engagement is facilitated through dedicated innovation hubs at BNR and ASF.

The emphasis is on consumer protection, operational resilience and risk management, reflecting EU fintech priorities.

‍

Read the full article here